NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Secunia Advisories> 2010-q1

[SA38728] Blue Coat Products TLS Session Renegotiation Plaintext Injection

From: Secunia Security Advisories (sec-advsecunia.com)
Date: Wed Feb 24 2010 - 16:57:14 CST

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

----------------------------------------------------------------------

Use WSUS to deploy 3rd party patches

Public BETA
http://secunia.com/vulnerability_scanning/corporate/wsus_3rd_third_party_patching/

----------------------------------------------------------------------

TITLE:
Blue Coat Products TLS Session Renegotiation Plaintext Injection

SECUNIA ADVISORY ID:
SA38728

VERIFY ADVISORY:
http://secunia.com/advisories/38728/

DESCRIPTION:
Blue Coat has acknowledged a vulnerability in multiple products,
which can be exploited by malicious people to manipulate certain
data.

The vulnerability is caused due to an error in the TLS protocol while
handling session re-negotiations. This can be exploited to insert
arbitrary plaintext before data sent by a legitimate client in an
existing TLS session via Man-in-the-Middle (MitM) attacks.

This is related to:
SA37291

The vulnerability is reported in all versions of ProxySG and
PacketShaper.

SOLUTION:
Do not rely on the integrity of TLS-encrypted data.

ORIGINAL ADVISORY:
https://kb.bluecoat.com/index?page=content&id=SA44

OTHER REFERENCES:
SA37291:
http://secunia.com/advisories/37291/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/

Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]